Ransomware attack on Industrial and Commercial Bank of China disrupts US Treasury market trades

Spread the love

A ransomware attack on Industrial and Commercial Bank of China (ICBC) disrupted some trades in the US Treasury market on Thursday but market sources said the impact seemed to be limited.

ICBC Financial Services said in a statement a ransomware attack resulted in disruption to certain systems and it was conducting an investigation and “progressing its recovery efforts”.

The bank said it had successfully cleared US Treasury trades executed on Wednesday and repurchase agreements (repo) financing trades done on Thursday.

“In general, the event had a limited impact on the market,” said Scott Skrym, executive vice-president for fixed income and repo at broker-dealer Curvature Securities.

A booth for the Industrial and Commercial Bank of China is seen at the China International Fair for Trade in Services (CIFTIS) in Beijing in September 2020. Photo: Reuters

In ransomware attacks, hackers encrypt an organisation’s systems and demand ransom payments in exchange for unlocking them. It was not immediately clear who was behind the attack.

While ransomware attacks have been soaring across a range of sectors in recent years, they have rarely disrupted a major financial market. Thursday’s incident is likely to raise questions over market participants’ cybersecurity controls and potentially draw regulatory scrutiny.

Some market participants said trades going through ICBC, China’s largest commercial lender by assets, were not settled due to the attack and this affected market liquidity. It was not clear whether this contributed to the weak outcome of a 30-year bond auction on Thursday.

“There could have been maybe some technical issues with some participants not being able to access the market fully on the day,” said Michael Gladchun, associate portfolio manager, core plus fixed income, at Loomis Sayles.

ICBC chosen as bookrunner for Saudi Arabia’s US$11 billion syndicated loan

The Financial Times reported earlier on Thursday that the US Securities Industry and Financial Markets Association (SIFMA) told members that ICBC had been hit by ransomware that disrupted the US Treasury market by preventing it from settling trades on behalf of other market players.

“We are aware of the cybersecurity issue and are in regular contact with key financial sector participants, in addition to federal regulators. We continue to monitor the situation,” a Treasury spokesperson said in a response to a question about the FT report. SIFMA declined to comment.

The US Treasury market appeared to be functioning normally on Thursday, according to LSEG data.

According to the data platform Statista, globally organisations detected 493.33 million ransomware attack attempts last year. Cyber criminal group LockBit was the most prolific ransomware operator throughout 2022, according to the Financial Services Information Sharing and Analysis Centre.

The news is published by EMEA Tribune & SCMP210520-twitter-verified-cs-70cdee.jpg (1500×750)Follow our WhatsApp verified Channel 

Support Independent Journalism with a donation (Paypal, BTC, USDT, ETH)

News Agencies

About Author

The latest news from the News Agencies

You may also like

exotic expansion llc best stock picking services

Exotic Expansion LLC: Is it one of few Best Stock Picking Services?

Spread the loveExotic Expansion LLC: You may have wondered once in a life that if you had someone who can
investing in cryptocurrencies

Are you investing in cryptocurrencies? 4 important points before you invest

Spread the loveInvesting in cryptocurrencies Driven by financial backers’ energy, the cryptographic money market as of late crossed the $3